Key skills
Cyber SecurityIAMRisk Management
About this role
Role Overview
- Lead a team of ISSMs and ISSOs performing cybersecurity governance work on CUI, DFARS, and CMMC systems
- Perform security analysis of operational and development environments, threats, vulnerabilities and internal interfaces to define and assess compliance with accepted industry and government standards
- Oversee configuration management of assigned systems; auditing systems to ensure security posture integrity
- Lead staff with assessments and test/analysis data to document state of compliance with security requirements
- Conduct risk assessments and investigations, execute appropriate risk mitigations, and oversee incident response activities
- Conduct periodic hardware/software inventory assessments
- Serve as organization spokesperson on advanced projects and programs
- Act as advisor to management and customers on advanced technical research studies
- Interface with the appropriate government customers, suppliers, and company personnel to implement protective mechanisms and to ensure understanding of and compliance with cybersecurity requirements
Requirements
- Currently hold certification in good standing to satisfy IAM Level III (CISSP, GSLC, or CISM)
- 5+ years of experience with cyber security policies and implementation of Risk Management Framework (RMF): e.g. DAAPM, CNSSI 1253, ICD-503, JSIG, or NIST SP 800 series
- 3+ years of experience implementing and sustaining Defense Federal Acquisition Regulation Supplement (DFARS) 252.204-7012/National Institute of Standards and Technology (NIST) SP 800-171 controls and mapping to Cybersecurity Maturity Model Certification (CMMC) requirements
Tech Stack
- Cyber Security
Benefits
- health insurance
- flexible spending accounts
- health savings accounts
- retirement savings plans
- life and disability insurance programs
- paid time off